$ rpki-client -vvf rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa File: 3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa (raw, json) Hash identifier: toXJPhNtOXf98GJBbdqi9mllMSbcAgrmezktdUtueZ4= Subject key identifier: C9:EA:17:42:6C:E3:3D:EF:AA:3B:6B:76:3E:48:B2:BA:F2:92:10:F1 Certificate issuer: /CN=8FB017F8558B134E65670C5E56417CAA2FC460F1 Certificate serial: 70FE4B431B4268C5E147024BBCE35035A71B4E2E Authority key identifier: 8F:B0:17:F8:55:8B:13:4E:65:67:0C:5E:56:41:7C:AA:2F:C4:60:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FB017F8558B134E65670C5E56417CAA2FC460F1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa Signing time: Sun 03 May 2026 03:13:06 +0000 ROA not before: Sun 03 May 2026 03:08:06 +0000 ROA not after: Sun 02 May 2027 03:13:06 +0000 asID: 139364 IP address blocks: 103.169.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/8FB017F8558B134E65670C5E56417CAA2FC460F1.crl rsync://rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/8FB017F8558B134E65670C5E56417CAA2FC460F1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FB017F8558B134E65670C5E56417CAA2FC460F1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:fe:4b:43:1b:42:68:c5:e1:47:02:4b:bc:e3:50:35:a7:1b:4e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB017F8558B134E65670C5E56417CAA2FC460F1 Validity Not Before: May 3 03:08:06 2026 GMT Not After : May 2 03:13:06 2027 GMT Subject: CN=C9EA17426CE33DEFAA3B6B763E48B2BAF29210F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4b:50:69:70:14:f1:09:74:14:1b:52:a4:e4: 83:6b:7b:e3:70:0e:99:52:c0:56:41:10:e4:cf:6b: c0:da:78:4a:26:a1:a6:4c:9d:f9:d7:b9:72:5c:ec: 5c:75:fd:d6:e2:a9:58:88:f3:d5:77:05:e3:43:fb: 9a:a1:dc:af:e1:ff:f9:13:b8:95:b3:db:b1:67:54: b9:e5:9a:30:44:33:83:d4:e8:8b:a7:fe:41:a1:52: 30:16:b3:dc:6b:48:1f:f2:6b:4c:da:70:b0:be:a7: a1:a1:11:dd:ab:d9:0c:cd:c5:01:af:53:9a:3f:60: 10:7a:4e:58:54:5a:ad:db:0d:27:8d:0e:06:22:72: 21:9f:ec:a7:2e:f6:f4:ca:d3:ea:96:8c:f0:0e:8b: 61:b1:e3:24:76:e4:98:a7:0b:1e:76:10:a0:e9:59: f1:7e:3b:0e:4a:68:29:db:7b:4c:bd:ff:97:7e:21: 98:69:b3:fa:c7:2e:d8:93:de:c2:62:68:38:85:9c: db:5b:31:97:df:b5:7b:64:7a:3e:76:5b:fe:2a:68: 8b:9b:46:f5:ab:39:da:5d:88:df:5a:aa:7e:b3:15: 5b:c4:f4:a7:ec:43:65:be:ce:f8:65:92:93:f1:cf: c1:da:50:37:ec:1c:c1:af:55:f3:a4:40:9e:54:ea: 13:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EA:17:42:6C:E3:3D:EF:AA:3B:6B:76:3E:48:B2:BA:F2:92:10:F1 X509v3 Authority Key Identifier: keyid:8F:B0:17:F8:55:8B:13:4E:65:67:0C:5E:56:41:7C:AA:2F:C4:60:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/8FB017F8558B134E65670C5E56417CAA2FC460F1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8FB017F8558B134E65670C5E56417CAA2FC460F1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e328aac3-0094-421f-a201-24d820e2ab3d/0/3130332e3136392e3230302e302f32342d3234203d3e20313339333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.200.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b1:eb:aa:91:70:7e:f9:7f:45:f4:83:91:d2:e2:21:77:f8: 03:f5:3f:92:38:49:ea:34:01:ba:8e:98:08:0d:cf:26:b2:5d: fd:42:22:e1:8c:84:9e:3c:cb:2b:1b:ce:f5:62:7a:83:bc:59: eb:8f:f5:f8:d6:a2:bf:ca:fd:11:c2:5a:99:ad:1a:82:b5:78: af:78:17:8d:64:69:7a:f7:7e:62:0d:c0:b3:ec:37:72:94:3c: 65:c7:82:55:18:d9:80:43:fa:59:11:ea:45:ba:7b:9c:93:bc: a0:43:65:49:ee:e9:4d:de:1a:9d:83:c9:4a:40:9c:e3:2e:b5: 4f:fa:83:e2:0a:75:f7:e7:f2:3a:87:7f:5d:34:89:05:27:a3: d2:cb:e1:bb:a9:1b:b3:16:81:e7:7f:79:68:31:38:45:ff:3a: f1:b3:a4:e0:92:e6:e3:b8:41:13:5d:c8:cf:8f:91:66:8d:8c: 78:e9:51:2b:8f:f4:86:4b:54:16:9f:3c:8a:fb:63:74:ce:88: d4:d0:63:51:73:f0:fa:81:d7:fd:e2:8d:fe:8f:40:09:0f:6a: ea:fb:02:f4:06:bf:1e:e7:2e:54:26:7a:0a:ec:43:b5:29:56: 06:0c:65:2d:bd:c0:59:66:04:f2:0a:a4:f6:bd:5b:7d:eb:89: aa:a0:76:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcP5LQxtCaMXhRwJLvONQNacbTi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMDE3Rjg1NThCMTM0RTY1NjcwQzVFNTY0MTdDQUEy RkM0NjBGMTAeFw0yNjA1MDMwMzA4MDZaFw0yNzA1MDIwMzEzMDZaMDMxMTAvBgNV BAMTKEM5RUExNzQyNkNFMzNERUZBQTNCNkI3NjNFNDhCMkJBRjI5MjEwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnS1BpcBTxCXQUG1Kk5INre+Nw DplSwFZBEOTPa8DaeEomoaZMnfnXuXJc7Fx1/dbiqViI89V3BeND+5qh3K/h//kT uJWz27FnVLnlmjBEM4PU6Iun/kGhUjAWs9xrSB/ya0zacLC+p6GhEd2r2QzNxQGv U5o/YBB6TlhUWq3bDSeNDgYiciGf7Kcu9vTK0+qWjPAOi2Gx4yR25JinCx52EKDp WfF+Ow5KaCnbe0y9/5d+IZhps/rHLtiT3sJiaDiFnNtbMZfftXtkej52W/4qaIub RvWrOdpdiN9aqn6zFVvE9KfsQ2W+zvhlkpPxz8HaUDfsHMGvVfOkQJ5U6hOzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyeoXQmzjPe+qO2t2PkiyuvKSEPEwHwYDVR0j BBgwFoAUj7AX+FWLE05lZwxeVkF8qi/EYPEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTMyOGFhYzMtMDA5NC00MjFmLWEyMDEtMjRkODIwZTJhYjNkLzAvOEZCMDE3Rjg1 NThCMTM0RTY1NjcwQzVFNTY0MTdDQUEyRkM0NjBGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RkIwMTdGODU1OEIxMzRFNjU2NzBDNUU1NjQxN0NBQTJGQzQ2 MEYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UzMjhhYWMzLTAwOTQtNDIxZi1h MjAxLTI0ZDgyMGUyYWIzZC8wLzMxMzAzMzJlMzEzNjM5MmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqcgwDQYJ KoZIhvcNAQELBQADggEBAEux66qRcH75f0X0g5HS4iF3+AP1P5I4Seo0AbqOmAgN zyayXf1CIuGMhJ48yysbzvVieoO8WeuP9fjWor/K/RHCWpmtGoK1eK94F41kaXr3 fmINwLPsN3KUPGXHglUY2YBD+lkR6kW6e5yTvKBDZUnu6U3eGp2DyUpAnOMutU/6 g+IKdffn8jqHf100iQUno9LL4bupG7MWged/eWgxOEX/OvGzpOCS5uO4QRNdyM+P kWaNjHjpUSuP9IZLVBafPIr7Y3TOiNTQY1Fz8PqB1/3ijf6PQAkPaur7AvQGvx7n LlQmegrsQ7UpVgYMZS29wFlmBPIKpPa9W33riaqgdpE= -----END CERTIFICATE-----Generated at Wed May 13 07:52:43 2026 by rpki-client